What is claimed is: 

1. A method of controlling the digital signature process to allow controlled creation, 
modification, signature generation and signature verification of one or more 
subdocuments within a single cover document, each said subdocument differing from 
said cover document, comprising the steps of: 

creating a protected cover document for the creation, display and editing of one or 
more said subdocuments within said cover document and for controlling through 
said cover document access to all said subdocuments within said cover 
document for editing, signature generation or signature verification; 

creating through a menu associated with said cover document an access to one or 
more said subdocuments within that cover document for edit and display of said 
subdocument in said cover document; 

creating through a menu associated with said cover document a means for the 
transmission of a representation of said subdocument to an internal or external 
signature-generation program to allow creation of a digital signature for each 
said subdocument and for the verification of said digital signature; and 

providing in said cover document a means for the display and storage of any said 
digital signature created for said subdocument, together with the information 
required or useful to use said digital signature. 

2. A method according to claim 1, wherein said controlling through said cover document 
access to all said subdocuments within said cover document for editing, signature 
generation or signature verification comprises the steps of: 

creating within said cover document a reserved area or areas for each subsequently 
created subdocument; 



providing for the creation of a subdocument object for each subsequently created 
said subdocument by embedding an object in the cover document or creating a 
separate document; 

providing for the copying the contents of said subdocument into said subdocument 
object; 

opening said subdocument object for edit; 

after editing, transferring the contents of said subdocument object into the 
subdocument area in the cover document; and 

destroying said subdocument object. 

A method according to claim 1, wherein said controlling through said cover document 
access to all said subdocuments within said cover document for editing, signature 
generation or signature verification comprises the steps of: 

creating in a cover document a protected database with fields representing the 
content of said subdocuments together with any associated digital signatures 
and information; and 

providing access to said database fields to allow in a controlled manner for the 
editing of said subdocument fields; and 

providing through said cover document a means for user view and copy of the 
contents of said database fields. 

A method according to claim 1, wherein said controlling through said cover document 
access to all said subdocuments within said cover document for editing, signature 
generation or signature verification comprises the steps of: 



creating within said cover document a reserved area or areas for each subsequently 
created subdocument; 

providing a means for the creation of a web page displaying the contents of said 
subdocument area of the cover page, and allowing said contents being exposed 
for editing in the web page; 

transferring the contents of the web page after editing into said subdocument area 
in the cover document; and 

destroying the web page. 

A method according to claim 1, wherein said controlling through said cover document 
access to all said subdocuments within said cover document for creation, editing, 
signature generation or signature verification comprises the steps of: 

providing for the creation of a separate document with access controlled through 
said cover document for each said subdocument to be subsequently added; 

providing a representation of any such said separate subdocument on said cover 
document; and 

providing a means through the cover document for the controlled access to said 
separate subdocument document for editing and digital signature generation 
and verification. 

A method according to claim 1, wherein said controlling through said cover document 
access to all said subdocuments within said cover document for creation, editing, 
signature generation or signature verification comprises the steps of: 

creating within said cover document a reserved area or areas for each subsequently 
created said subdocument; 



providing for insertion of said subdocuments with controlled access into said 
reserved area; 

providing for editing said subdocuments by the removal of protection of all or a 
portion of said subdocument reserved area for user edits; and 

after editing the subsequent restoration of protection to unprotected areas of said 
cover document. 

A method according to claim 1, wherein said creating through a menu associated with 
said cover document a means for the transmission of a representation of said 
subdocument to an internal or external signature-generation program to allow creation 
of a digital signature for each said subdocument and for the verification of said digital 
signature comprises the steps of: 

creating a temporary or permanent subdocument object by embedding an object in 
the cover document or creating a separate document; 

copying the contents of said subdocument into the subdocument object; 

obtaining from the user identifying information; 

transmitting said subdocument object and the identifying information to an external 
or internal signature-generation program for the generation of a digital 
signature; and 

placing the returned digital signature and any applicable identifying information in 
said cover document in text, hidden text, an embedded object, or a combination 
of these. 

A method according to claim 1, further comprising the step of formatting the cover 
document suitable for printing in the final form and formatting the contained 
subdocuments and signatures for data parsing. 



9. A method according to claim 1, further comprising the step of verifying in said cover 
document the user identity utilized for the generation of digital signatures by requiring 
the simultaneous reading of physical tokens or user characteristics, such as RFID keys, 
proximity cards, biometric readers, "smart cards", and other unique personal 
identification means. 

10. A method according to claim 1, further comprising the step of maintaining within said 
cover document or as a separate file under the control of said cover document an audit 
file containing a record of transactions such as signature generation attempts, signature 
generation failures, and digital signature generation deletions involved with digital 
signature generation through the cover document. 

11. A method of controlling the digital signature process by creating a hierarchy of 
subdocuments and approval signatures, comprising the steps of: 

creating a protected cover document, differing from any said subdocument, for the 
creation, display and editing of said subdocuments and for controlling through 
said cover document access to said subdocuments for editing, signature 
generation or signature verification of said subdocuments; 

creating through a menu associated with said cover document a means for the 
transmission of said subdocument to a signature-generation program to allow 
creation of a digital signature for said subdocument and for the verification of 
said digital signature; 

providing through a menu associated with said cover document a means for the 
display and storage of any digital signature created for said subdocument, 
together with the information required or useful to use said digital signature; 

providing through a menu associated with the cover document for the generation of 
an approval signature for an approval range of said cover document including 



one or more said subdocuments, any associated digital signatures and 
accompanying signature information, or other approval signatures; 

providing protection for the integrity of any said approval signature by either 
preventing the editing of said subdocuments within the approval range for said 
signed approval signature or destroying any approval signature whose approval 
range includes a subdocument edited after approval; and 

providing in the cover document a means for the display and storage of any approval 
signature, together with the information required or useful to use said approval 
signature. 

12. A method according to claim 11, wherein said generation of an approval signature for 
an approval range of said cover document including one or more said subdocuments is 
accomplished by providing a means for the transmission of the user's identifying 
information together with an image of this range to an internal or external signature- 
generation program or module to allow the creation of a digital signature for the 
contents of the range. 

13. A method according to claim 11, further comprising the step of establishing a approval 
authority level hierarchy or a list of allowed approvers for said approval signature and 
preventing the generation of an approval signature if the signer does not have the 
necessary authority. 

14. A method according to claim 11, further comprising the step of preventing the 
generation of said approval signature when a subdocument within the approval range 
has not been validly signed. 

15. A method according to claims 1 or 11 further comprising the step of allowing comments 
in said subdocument, comprising the steps of: 



providing in said cover document a method of inserting comments into said 
subdocuments; and 

providing in the transmission of said subdocument to an internal or external 

signature-generation program in the creation or verification of a subdocument 
digital signature for the removal of any reference to said comments prior to the 
transmission to said signature-generation program. 

16. A method according to claim 15, wherein said providing in said cover document a 
method of inserting comments into said subdocuments comprises the insertion into said 
subdocument of a link to a comment object in said cover document. 

17. A method according to claim 15, wherein said providing in the cover document a 
method of inserting comments into said subdocuments comprises the insertion of the 
comment in the subdocument between delineation characters whereby the comment 
can be subsequently isolated. 



